deconfort.ro/xr/adobe/
31.14.22.170301 Moved Permanently 707 B IP 31.14.22.170:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET /xr/adobe/ HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 02 Dec 2022 22:09:44 GMT
server: LiteSpeed
location: https://deconfort.ro/xr/adobe/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8961
Expires: Sat, 03 Dec 2022 00:39:05 GMT
Date: Fri, 02 Dec 2022 22:09:44 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5868
Cache-Control: max-age=136759
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 22:09:44 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 12:09:03 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 21:18:12 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3092
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6585
Expires: Fri, 02 Dec 2022 23:59:29 GMT
Date: Fri, 02 Dec 2022 22:09:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Z26RlWinHAbvD+iK6sHm+pnsN09EXqIHkAKUI3LFcnNOInG+/8xCzWOmYGhnw+R5RbJlxcniThc=
x-amz-request-id: BWG7MHMJ9FHDD0D6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 21:46:51 GMT
age: 1374
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 22:09:45 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 21:11:16 GMT
cache-control: public,max-age=3600
age: 3509
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5860
Cache-Control: max-age=131689
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 22:09:45 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 10:44:34 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
deconfort.ro/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
31.14.22.170200 OK 12 kB URL HTTP/2 deconfort.ro/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 31.14.22.170:0
File type ASCII text, with very long lines (47826)
Hash c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 06:59:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11616
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
31.14.22.170200 OK 1.8 kB URL HTTP/2 deconfort.ro/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
IP 31.14.22.170:0
File type ASCII text, with very long lines (10435), with no line terminators
Hash f7237084ac82ea6a4f5bf1448c3a2148
60457635a5e809ee1199c61090d8e33b91e8e1f2
18a1cb7f08c1ace52a79f46d73461ed03bf8cf5c9e8a3687eacc3e04f08e7a09
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 09 Nov 2022 06:59:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1754
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.203.75.56101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.203.75.56:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gxYSI/cAxbtD+fgKzmRoUA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /0cKa7n6PLaT8NqxdGEMzb0JA2c=
deconfort.ro/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
31.14.22.170200 OK 23 kB URL HTTP/2 deconfort.ro/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
IP 31.14.22.170:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 0c6730c96c60030ddaf42fcf5daf3b17
feb4c0071f27718582e58d365022a1b559de5765
d996bec53b493bc579754f29f7d6d0b5332f3354c860a3787e2365a79c44f995
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 09 Nov 2022 06:59:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 22871
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
31.14.22.170200 OK 670 B URL HTTP/2 deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
IP 31.14.22.170:0
File type ASCII text, with very long lines (2630), with no line terminators
Hash 6867f0990d852a8660a2d6f7a6675183
0240940bdf174107a14d132fa82b50b1445ff2f8
598b0ec44ac00e2f238bebe6077530ad4e6ac41f99122d495313302b380c2868
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Mon, 14 Nov 2022 18:59:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 670
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
31.14.22.170200 OK 6.6 kB URL HTTP/2 deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
IP 31.14.22.170:0
File type ASCII text, with very long lines (30441)
Hash 3160c468e16b391c087428c6961602de
0e39e52d4887d3e52e7af98526a76a8b788738ed
4aaedd1cc4ee377bb8b5390fe56da25db79b9cf2d7e6c0d64c1bc8fc88436a95
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Mon, 14 Nov 2022 18:59:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6581
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
31.14.22.170200 OK 1.9 kB URL HTTP/2 deconfort.ro/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
IP 31.14.22.170:0
File type ASCII text, with very long lines (9281), with no line terminators
Hash dc91028c24ac0d7a6f4872a1320fa5e8
508ce388de37cd7cf6eedcea816789880589479e
c019b08c90cf3573e8ea887626853781059d1af59698f7929cdc94c84054bddf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 09 Nov 2022 06:59:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1863
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.15.0
31.14.22.170200 OK 4.6 kB URL HTTP/2 deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.15.0
IP 31.14.22.170:0
File type ASCII text, with very long lines (29337), with no line terminators
Hash d57b8bb9da5c87b07c0bbfbf68eedfde
d85a4b62617cef8db8476076d9a2c4b5def0e226
0eccad1a79bcc73c4bd29ff253cd618161eb102c60cc755f42c55f7b85a1b763
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.15.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Mon, 14 Nov 2022 18:59:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4583
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-includes/css/classic-themes.min.css?ver=1
31.14.22.170200 OK 144 B URL HTTP/2 deconfort.ro/wp-includes/css/classic-themes.min.css?ver=1
IP 31.14.22.170:0
Hash fcbd239f30d9a6dd1f3637f291143d37
2871bf7d98af3f43e42f7fa32808048e7134fabf
c2f98e9d71f782b7a3266cd337c61ae6c8dcbb7203669c07852aa2ab65ab6144
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Thu, 10 Nov 2022 07:42:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 144
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
31.14.22.170200 OK 848 B URL HTTP/2 deconfort.ro/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 31.14.22.170:0
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 18:59:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.6
31.14.22.170200 OK 823 B URL HTTP/2 deconfort.ro/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.6
IP 31.14.22.170:0
Hash 325a132d75412944b23be0b51a6bdff8
1fb8127a72457da6483b02c58e1734d37ee4101c
197bea6294f188f78751349248e706c6b3b37a18c9a80323d617c197d77fd1bd
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.6 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Mon, 28 Nov 2022 06:59:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 823
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.6
31.14.22.170200 OK 4.1 kB URL HTTP/2 deconfort.ro/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.6
IP 31.14.22.170:0
Hash ffa5cbdcb246c4cf2f6723f008bd93ec
171c531ec60cf2d0f81b654b2004adaa49493ab1
de8d5460fafabe376ea48120abade25c3b0f27a4f511af19bd41569106c1052b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.6 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Mon, 28 Nov 2022 06:59:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4116
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/related-posts-thumbnails/assets/css/front.css?ver=1.9.0
31.14.22.170200 OK 800 B URL HTTP/2 deconfort.ro/wp-content/plugins/related-posts-thumbnails/assets/css/front.css?ver=1.9.0
IP 31.14.22.170:0
File type ASCII text, with CRLF line terminators
Hash 855bb030bfa250235e9cbc7e135403a9
ddd86dec954ba756d038dadcd6dbf437df1e53d7
90ebb082a230b44d0ca1863a30885d40e1ddfff73278fa2f81ffad166cc33eb0
GET /wp-content/plugins/related-posts-thumbnails/assets/css/front.css?ver=1.9.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Fri, 22 Jul 2022 09:58:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 800
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/css/font-awesome.min.css?ver=1.4.12
31.14.22.170200 OK 6.7 kB URL HTTP/2 deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/css/font-awesome.min.css?ver=1.4.12
IP 31.14.22.170:0
File type ASCII text, with very long lines (30837)
Hash 97c6ce9b4936f66aa388ad33c39aba2d
3f14a7e78fbb4935cf35c20779dc2035531849a9
1eea453c424793fc56ef14093c10b373e3ca8388a70e847394e8084048c5ce38
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woo-category-slider-grid/public/css/font-awesome.min.css?ver=1.4.12 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 18:59:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6658
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/css/woo-category-slider-public.min.css?ver=1.4.12
31.14.22.170200 OK 654 B URL HTTP/2 deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/css/woo-category-slider-public.min.css?ver=1.4.12
IP 31.14.22.170:0
File type ASCII text, with very long lines (2598), with no line terminators
Hash 045ac3a9e3ac68ce5059bbcd19492add
c2e9784d64b24ed9cac3e42f5fa3e51986aa99ce
b5aeca5f6bdb64913326676e028e9dc3b5b075b3953588bb34a928a0266645b6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woo-category-slider-grid/public/css/woo-category-slider-public.min.css?ver=1.4.12 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 18:59:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 654
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/style.css?ver=1.1.3
31.14.22.170200 OK 1.2 kB URL HTTP/2 deconfort.ro/wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/style.css?ver=1.1.3
IP 31.14.22.170:0
Hash d2bf89c3a717c02ed4284bbd3189f8d0
8c79bcf8a344211888590d311a418caba9e52018
e4a7cff2d55846842cb1ce8c20e52c960a964a1cdc2ab26055b115099a038f1c
GET /wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/style.css?ver=1.1.3 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 18:59:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1152
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/responsive.css?ver=1.1.3
31.14.22.170200 OK 313 B URL HTTP/2 deconfort.ro/wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/responsive.css?ver=1.1.3
IP 31.14.22.170:0
Hash 568dbb5aaec088cd5c68e225d5281be8
52b3394a134aded8ff1bc6fe1fa52c75e7ce8e9b
652ccb571267153d8ee0e075d26f8c3851b71d4599850a7831af7751b306ca02
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/responsive.css?ver=1.1.3 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 18:59:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 313
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/ajax-search-for-woocommerce/assets/css/style.min.css?ver=1.20.0
31.14.22.170200 OK 5.6 kB URL HTTP/2 deconfort.ro/wp-content/plugins/ajax-search-for-woocommerce/assets/css/style.min.css?ver=1.20.0
IP 31.14.22.170:0
File type ASCII text, with very long lines (33185)
Hash 28055b88381582d485c7df5345b4efd1
2eb5318a1ce767ef8e477ffe384ecf840e133734
b8e0b1d99ec6af9b3a7cba4e99c4687651bbc343188fb6aa39fdd881d262fff2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ajax-search-for-woocommerce/assets/css/style.min.css?ver=1.20.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 14 Sep 2022 16:42:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5582
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/product-categories-designs-for-woocommerce/assets/css/slick.css?ver=1.4.1
31.14.22.170200 OK 441 B URL HTTP/2 deconfort.ro/wp-content/plugins/product-categories-designs-for-woocommerce/assets/css/slick.css?ver=1.4.1
IP 31.14.22.170:0
File type ASCII text, with very long lines (1425), with CRLF line terminators
Hash 049c2ce182f5800442db9d67f3df1ded
5a92f45e4a9c8eb491e0c945cf01371231c741f6
3452b1e1468b64831bc2ef609bf46ebb007c04177aeedeeac9729d5e3e501dc7
GET /wp-content/plugins/product-categories-designs-for-woocommerce/assets/css/slick.css?ver=1.4.1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Fri, 29 Jul 2022 18:05:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 441
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/product-categories-designs-for-woocommerce/assets/css/pcdfwoo-public.css?ver=1.4.1
31.14.22.170200 OK 1.3 kB URL HTTP/2 deconfort.ro/wp-content/plugins/product-categories-designs-for-woocommerce/assets/css/pcdfwoo-public.css?ver=1.4.1
IP 31.14.22.170:0
File type ASCII text, with very long lines (367)
Hash ca2ea88aa5157529befd451ead0d62af
df8534e61c522499a99ec8334bc4fc4a8cc4e662
189c92eda44949fca98bfcd1dfcad6de22d77cb6e31b60b297abc1d2372b61c3
GET /wp-content/plugins/product-categories-designs-for-woocommerce/assets/css/pcdfwoo-public.css?ver=1.4.1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Fri, 29 Jul 2022 18:05:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1281
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/themes/deconfort/assets/css/woo/woo-mini-cart.min.css?ver=6.1.1
31.14.22.170200 OK 1.2 kB URL HTTP/2 deconfort.ro/wp-content/themes/deconfort/assets/css/woo/woo-mini-cart.min.css?ver=6.1.1
IP 31.14.22.170:0
File type ASCII text, with very long lines (5867)
Hash d066ac9af4493d15244e551ffbbce593
a4231019f266fb0362867c391048d6c08f00bb01
873e2b31cb8e76737863e1a7eae98cd6d9006c19b1866ce9e0c1641e1e9c7a91
GET /wp-content/themes/deconfort/assets/css/woo/woo-mini-cart.min.css?ver=6.1.1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1160
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 22:09:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
deconfort.ro/wp-content/themes/deconfort/assets/css/woo/woocommerce.min.css?ver=6.1.1
31.14.22.170200 OK 12 kB URL HTTP/2 deconfort.ro/wp-content/themes/deconfort/assets/css/woo/woocommerce.min.css?ver=6.1.1
IP 31.14.22.170:0
File type ASCII text, with very long lines (65439)
Hash 463e92ccc7f2362332712621ed2d70a5
a7099883d0aab5c5159a46c8eab36060018573da
15149506b0cb81c8b54ec286bd855683918cfd3fba39693cfa7c4db7b0175915
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/deconfort/assets/css/woo/woocommerce.min.css?ver=6.1.1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12480
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/themes/deconfort/assets/css/woo/woo-star-font.min.css?ver=6.1.1
31.14.22.170200 OK 554 B URL HTTP/2 deconfort.ro/wp-content/themes/deconfort/assets/css/woo/woo-star-font.min.css?ver=6.1.1
IP 31.14.22.170:0
File type ASCII text, with very long lines (2006), with no line terminators
Hash 41218aae562539436e7bfa03f3d20a54
597ceaaf3c75495d2d5c903334084bd512d982af
1e930ae3ff022d553841e7de6a3bf98da2bdcf2ade1ad8f6512110b7b2018ad4
GET /wp-content/themes/deconfort/assets/css/woo/woo-star-font.min.css?ver=6.1.1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 554
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/css/all.min.css?ver=5.11.2
31.14.22.170200 OK 12 kB URL HTTP/2 deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/css/all.min.css?ver=5.11.2
IP 31.14.22.170:0
File type ASCII text, with very long lines (56656)
Hash 539d25e5872f467d7d6e33fe1c2312f0
4bbc8854b6afa2440260ae671c81ec4dea11589e
2694ec62ccc8661b197949c466e58c7e36f87f009a7dcc33a6503578d88300af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/deconfort/assets/fonts/fontawesome/css/all.min.css?ver=5.11.2 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11868
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/themes/deconfort/assets/css/third/simple-line-icons.min.css?ver=2.4.0
31.14.22.170200 OK 2.3 kB URL HTTP/2 deconfort.ro/wp-content/themes/deconfort/assets/css/third/simple-line-icons.min.css?ver=2.4.0
IP 31.14.22.170:0
File type ASCII text, with very long lines (10909), with no line terminators
Hash a40597353660fda4217b0d1c3f305ccb
33e8af974d0d0dd7ac1130291563ccd16aac0c4a
46258cd1efddef6c82da89bdea11e707b8068b692c6d29b16bc4e3de0fc68889
GET /wp-content/themes/deconfort/assets/css/third/simple-line-icons.min.css?ver=2.4.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2306
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/themes/deconfort/assets/css/third/magnific-popup.min.css?ver=1.0.0
31.14.22.170200 OK 1.4 kB URL HTTP/2 deconfort.ro/wp-content/themes/deconfort/assets/css/third/magnific-popup.min.css?ver=1.0.0
IP 31.14.22.170:0
File type ASCII text, with very long lines (5235), with no line terminators
Hash 30f96dcedb12942dbda36a64348cabeb
5662ec6ab79f0607b9f002419d449606589f4217
ef087a2d2ea20356ff3ed660e2b79b735784e1f0a13fc7f212fc602f36c5adfd
GET /wp-content/themes/deconfort/assets/css/third/magnific-popup.min.css?ver=1.0.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1401
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/themes/deconfort/assets/css/third/slick.min.css?ver=1.6.0
31.14.22.170200 OK 498 B URL HTTP/2 deconfort.ro/wp-content/themes/deconfort/assets/css/third/slick.min.css?ver=1.6.0
IP 31.14.22.170:0
File type ASCII text, with very long lines (1618), with no line terminators
Hash 19b2d14e196bdc9835bfb53c0cd8a294
a98c011c4fd493e20ca38c3e3a8b37e6657e34dc
3029e27eec26d77c1545ea8b854823c18538d8942fe325560dd3822360cabc4d
GET /wp-content/themes/deconfort/assets/css/third/slick.min.css?ver=1.6.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 498
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/themes/deconfort/assets/css/style.min.css?ver=1.8.9
31.14.22.170200 OK 22 kB URL HTTP/2 deconfort.ro/wp-content/themes/deconfort/assets/css/style.min.css?ver=1.8.9
IP 31.14.22.170:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65531), with no line terminators
Hash 21a6324a77d7c29232a4e7001142ad33
ca263d08619dce621de466fb07bf9ec21ed37088
159adb2eab2d294b6850a8ed1d8201c49f2d15d6a649e367aad8c610b99778cd
GET /wp-content/themes/deconfort/assets/css/style.min.css?ver=1.8.9 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 22065
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/css/owl.carousel.css?ver=2.3.4
31.14.22.170200 OK 1.1 kB URL HTTP/2 deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/css/owl.carousel.css?ver=2.3.4
IP 31.14.22.170:0
File type ASCII text, with very long lines (3184)
Hash fcbee4e0c112b5d5d5e3b3b4b0dbcc17
3ba0629366aac0459a79deacb011b80478176540
f4e12894dae3280992f276760a1a70bd301e5e917be2f5c14b02f8a728a9b545
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpb-woocommerce-related-products-slider/assets/css/owl.carousel.css?ver=2.3.4 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Mon, 06 Sep 2021 06:57:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1124
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/css/main.css?ver=1.0
31.14.22.170200 OK 1.6 kB URL HTTP/2 deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/css/main.css?ver=1.0
IP 31.14.22.170:0
Hash 6ebb30281f2cabc80a2e1038eceecf75
8fd9d055f3833e9017647f01be92599d408a19cb
c0a77e6e2799354868569fbb5abbee81cbc831451dab496f946398d0e226f96c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpb-woocommerce-related-products-slider/assets/css/main.css?ver=1.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Mon, 06 Sep 2021 06:57:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1636
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
31.14.22.170200 OK 30 kB URL HTTP/2 deconfort.ro/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 31.14.22.170:0
File type ASCII text, with very long lines (65447)
Hash 3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 07:42:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30324
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
31.14.22.170200 OK 4.0 kB URL HTTP/2 deconfort.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 31.14.22.170:0
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.6
31.14.22.170200 OK 7.2 kB URL HTTP/2 deconfort.ro/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.6
IP 31.14.22.170:0
Hash 8bd4d1eb07cb68a27223bf32f50184cf
ba804fa2dd6a4d2a9898ef6bf368e040401bfd10
a5ec6cc0c317459eb1ff1e6336e0857761ae1e5be6f9ab8ff92c53a78a79cd0c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.6 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Mon, 28 Nov 2022 06:59:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7223
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/iks-menu/assets/js/public.js?ver=1.9.8
31.14.22.170200 OK 421 B URL HTTP/2 deconfort.ro/wp-content/plugins/iks-menu/assets/js/public.js?ver=1.9.8
IP 31.14.22.170:0
File type ASCII text, with very long lines (936), with no line terminators
Hash 5ef787c2f7ef5fe9ba7515d8c1e14a8c
e690352f7404f1bd8e39a45975d10cd38168403d
477bcc99213c46dd21dddda3c00dbe954dda336f63ca28b57997760267fe0e53
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/iks-menu/assets/js/public.js?ver=1.9.8 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Fri, 22 Jul 2022 09:58:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 421
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/iks-menu/assets/css/public.css?ver=1.9.8
31.14.22.170200 OK 20 kB URL HTTP/2 deconfort.ro/wp-content/plugins/iks-menu/assets/css/public.css?ver=1.9.8
IP 31.14.22.170:0
File type ASCII text, with very long lines (47513)
Hash d534589000eac35663a9baaa4cf4ff86
e4906a238e9f15bc33854fb1f5b8155c8f50f430
8666580d2ca44f25b0a989af9cf64a32be9dcf72225bc0b19fbeaf7a65b1068a
GET /wp-content/plugins/iks-menu/assets/css/public.css?ver=1.9.8 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Fri, 22 Jul 2022 09:58:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19791
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-78965485-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-78965485-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 8ce005b1e68b93a392d26fd320ca0cc4
c8772f8fa600853535bb5e1d3d36c0197655a41c
752dfc12c7a9a79bb66ac19ddd6cb4c907567f5a87da761ae5b2fb07ab76ba65
GET /gtag/js?id=UA-78965485-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 22:09:46 GMT
expires: Fri, 02 Dec 2022 22:09:46 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 21:30:22 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43653
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/iks-menu/assets/js/menu.js?ver=1.9.8
31.14.22.170200 OK 2.2 kB URL HTTP/2 deconfort.ro/wp-content/plugins/iks-menu/assets/js/menu.js?ver=1.9.8
IP 31.14.22.170:0
Hash 19b6b77c0179022c365adac15a74ccae
afd68c1eda721590d498c2637dd693bdfd6bfd74
24a0ee1a12ab686de70ad7e4dd6ecc5f1a4bdc7cfa8b05a3cbfdca9e3ae50684
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/iks-menu/assets/js/menu.js?ver=1.9.8 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Fri, 22 Jul 2022 09:58:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2180
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
31.14.22.170200 OK 3.5 kB URL HTTP/2 deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP 31.14.22.170:0
File type Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Hash 8e3bd2af5dfce9709733e4adabb032ad
94aa210458d7103cecb401ef0a71100ea48c2ed7
a24331f6cb5f0d263a8aa7a78e9105ec5956f82162f30d718fd23fb325d7b669
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Mon, 14 Nov 2022 18:59:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3500
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
31.14.22.170200 OK 5.4 kB URL HTTP/2 deconfort.ro/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP 31.14.22.170:0
File type HTML document, ASCII text, with very long lines (21310), with no line terminators
Hash 33081d75af44148dbfd85f7f8f4382ff
a2bac4c76a6a40839a6682df66eb40cd8c4d470d
b8dad2c0f7d74cdfcf2b9f96a17f72886b64edab3e392f7d72df15e1c1ac3119
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 09 Nov 2022 06:59:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5350
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
31.14.22.170200 OK 2.8 kB URL HTTP/2 deconfort.ro/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 31.14.22.170:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash 4317b1c024df372435f6482deadddeb3
5c8824a17e40a44ea8fc51568b98bdb1e2e7fab5
3798fb16289ba55459fb6d3b2efa915e3c019c5942759abb7bd19a0ef622b85d
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 18:59:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2817
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
31.14.22.170200 OK 3.7 kB URL HTTP/2 deconfort.ro/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 31.14.22.170:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash dc6411bfa6891b75944f0074c945752d
03c1a8b686c287068c61ab90f58d905496d65085
96abeabc9cc7b4c2b7d46579f2827c67ccd02fbaef0343ae052f71accd381b0d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 18:59:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3706
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/swiper-config.js?ver=1.4.12
31.14.22.170200 OK 794 B URL HTTP/2 deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/swiper-config.js?ver=1.4.12
IP 31.14.22.170:0
Hash a809352ba12dba9d307afc7104a07cb2
0164f5cffd10a0a112e72fb95ba3ca5d734d3f17
87dc99de507a51dd575b18a97057327f671f154a71e88816e4d7708eb020e654
GET /wp-content/plugins/woo-category-slider-grid/public/js/swiper-config.js?ver=1.4.12 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 18:59:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 794
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/preloader.min.js?ver=1.4.12
31.14.22.170200 OK 192 B URL HTTP/2 deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/preloader.min.js?ver=1.4.12
IP 31.14.22.170:0
File type ASCII text, with very long lines (421), with no line terminators
Hash 9237455cb5d01c0c5b2ecddbcb451a3b
2a2f2b4b193b2610e829f8209740641252ae158b
0570d4b5258c57fa7e5ff6bf0f0e498cddf8c4076cd3b6fb6b149fc0a1d57473
GET /wp-content/plugins/woo-category-slider-grid/public/js/preloader.min.js?ver=1.4.12 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 18:59:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 192
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/woo-category-slider-grid/admin/js/woo-category-slider-admin.min.js?ver=1.4.12
31.14.22.170200 OK 202 B URL HTTP/2 deconfort.ro/wp-content/plugins/woo-category-slider-grid/admin/js/woo-category-slider-admin.min.js?ver=1.4.12
IP 31.14.22.170:0
File type ASCII text, with very long lines (588), with no line terminators
Hash 5af2853f8607d2c960ae6056a3f5f174
dc7ae421bc893312a7081a55c2081c4e0ce9c742
a1dbe9da7385ed84a7185d4d4e869b8d496d0d5bff6ac05e6972a83e0c99402b
GET /wp-content/plugins/woo-category-slider-grid/admin/js/woo-category-slider-admin.min.js?ver=1.4.12 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 18:59:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 202
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
31.14.22.170200 OK 3.2 kB URL HTTP/2 deconfort.ro/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
IP 31.14.22.170:0
File type ASCII text, with very long lines (9111)
Hash 078e27719ab2b91e57a3d06d05bf24d8
ee2c8af72d9dbb148d4101a374f6026d0c9c3044
1c8b599f3f7bfa8d7950d95a171f2c873d051960a91c91e22304293596e5b890
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 09 Nov 2022 06:59:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3247
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
31.14.22.170200 OK 972 B URL HTTP/2 deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
IP 31.14.22.170:0
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash 5ed77e0c59800f40061b5c322cff21fa
ced9d401d300dd1fc676a673bbf7e6360beb402d
3b284b8a096256e6cd0d9cbf2cb4b36505e71c0d7b2227fcd3132dddbeea18cc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 09 Nov 2022 06:59:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 972
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
31.14.22.170200 OK 899 B URL HTTP/2 deconfort.ro/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
IP 31.14.22.170:0
File type ASCII text, with very long lines (1668)
Hash 22d65ba38528349e705d912ce26bf8ac
c89ba006009043d93b88ff155b4fec8797330550
6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 09 Nov 2022 06:59:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
31.14.22.170200 OK 677 B URL HTTP/2 deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
IP 31.14.22.170:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash a43fc0dde8fdd69656ad0957e62849c7
4b07cf702ac8a770c8cbffc22b9a788b6e5389ba
1ce3d0493424870c81deec0ec41de0592d2af9f91cd8081cd40a1d7ea89b614f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 09 Nov 2022 06:59:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
31.14.22.170200 OK 934 B URL HTTP/2 deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
IP 31.14.22.170:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash cf25dd071a208312bdc07f34d2cee027
76119563119eaae392ecc8903c989d98d0b93002
8635ba2cad8f887e72779bd526f8738ff6343c74cba715caf2eddea383ba7ce6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 09 Nov 2022 06:59:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 934
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/owl.carousel.js?ver=2.3.4
31.14.22.170200 OK 11 kB URL HTTP/2 deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/owl.carousel.js?ver=2.3.4
IP 31.14.22.170:0
File type ASCII text, with very long lines (31997)
Hash 3cb10c6c01ef15e7d2c5ef33c6f06ee5
561a0008fd649a946ff6cdba379547c998cb4582
2107b826f18f7f10f78a38641124da03dad389704816a86136488123a0f01f3d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/owl.carousel.js?ver=2.3.4 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Mon, 06 Sep 2021 06:57:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11139
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/init.js?ver=1.0
31.14.22.170200 OK 424 B URL HTTP/2 deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/init.js?ver=1.0
IP 31.14.22.170:0
Hash ea1a0f2aae20b967038daa60841b784c
52e89f5cb869ecd84acec5da708f792373392e5e
4579cf1c60d183171a6a67b47401df0e2584468a28920fb70171f80c1b87b114
GET /wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/init.js?ver=1.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Mon, 06 Sep 2021 06:57:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 424
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/themes/deconfort/assets/js/third/woo/woo-mini-cart.min.js?ver=1.8.9
31.14.22.170200 OK 304 B URL HTTP/2 deconfort.ro/wp-content/themes/deconfort/assets/js/third/woo/woo-mini-cart.min.js?ver=1.8.9
IP 31.14.22.170:0
File type ASCII text, with very long lines (786), with no line terminators
Hash 940fb6915a04acbdd6a312942cd73d51
ad145958d6cefb71ad45aadd88c416dfe38b0b31
026ae153b52549feb5b8461912bcb4096ef33735eefe0b9041e1fba13f21d716
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/deconfort/assets/js/third/woo/woo-mini-cart.min.js?ver=1.8.9 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 17 Dec 2020 05:47:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 304
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-includes/js/imagesloaded.min.js?ver=4.1.4
31.14.22.170200 OK 1.7 kB URL HTTP/2 deconfort.ro/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 31.14.22.170:0
File type ASCII text, with very long lines (5477)
Hash fa921f07ecc438baf227765de450e215
1fdd49d8bb681cb118ea8d67d4fc61b0ad46cc95
b2cc68637048b04952a2f33163f64571145dbe0817a14c68fe6f1661bd81091f
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Sat, 13 Jun 2020 18:53:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1733
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/themes/deconfort/assets/js/third/woo/woo-scripts.min.js?ver=1.8.9
31.14.22.170200 OK 1.3 kB URL HTTP/2 deconfort.ro/wp-content/themes/deconfort/assets/js/third/woo/woo-scripts.min.js?ver=1.8.9
IP 31.14.22.170:0
File type HTML document, ASCII text, with very long lines (4611), with no line terminators
Hash 77d4c6382ecd5580c1d23f05c58bce3c
d6102c0039215adc820d8c884c674c7ed226c433
d49c6a7f441d11f6aba6edbe5638835bb4c433f9df30b1a4fc285c1d72b74ee5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/deconfort/assets/js/third/woo/woo-scripts.min.js?ver=1.8.9 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 17 Dec 2020 05:47:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1283
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/themes/deconfort/assets/js/third/magnific-popup.min.js?ver=1.8.9
31.14.22.170200 OK 6.9 kB URL HTTP/2 deconfort.ro/wp-content/themes/deconfort/assets/js/third/magnific-popup.min.js?ver=1.8.9
IP 31.14.22.170:0
File type ASCII text, with very long lines (19869), with no line terminators
Hash 583ced44de594bf5bf8ee62a93ee9ae0
c961336a08bbf552819e02385e9dc0094fc5be8d
ab6660233a303e805faa8f82446247661582c1d8ea7467699ee2fee47c92be5d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/deconfort/assets/js/third/magnific-popup.min.js?ver=1.8.9 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 17 Dec 2020 05:47:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6889
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/themes/deconfort/assets/js/third/lightbox.min.js?ver=1.8.9
31.14.22.170200 OK 499 B URL HTTP/2 deconfort.ro/wp-content/themes/deconfort/assets/js/third/lightbox.min.js?ver=1.8.9
IP 31.14.22.170:0
File type ASCII text, with very long lines (1243), with no line terminators
Hash 4be5e64fd6b8c2ef6f39a333ba9659bb
f1d87f16c41ab18b657ca031e4b53701537a0215
82b0810e04857a11d133d03b4c43c3303b679e88a6353b6bdb86bd744febc488
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/deconfort/assets/js/third/lightbox.min.js?ver=1.8.9 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 17 Dec 2020 05:47:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 499
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/themes/deconfort/assets/js/main.min.js?ver=1.8.9
31.14.22.170200 OK 32 kB URL HTTP/2 deconfort.ro/wp-content/themes/deconfort/assets/js/main.min.js?ver=1.8.9
IP 31.14.22.170:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 882ff23de20809704744685f8b5e1ce4
8487a0e652e2b992ed8302a4aaf5a18bb569e358
8d33868e1796ff9715aa6f5414a15e9dd716eb9af4b04192822a7dd92d40107a
GET /wp-content/themes/deconfort/assets/js/main.min.js?ver=1.8.9 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 17 Dec 2020 05:47:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32005
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/ajax-search-for-woocommerce/assets/js/search.min.js?ver=1.20.0
31.14.22.170200 OK 15 kB URL HTTP/2 deconfort.ro/wp-content/plugins/ajax-search-for-woocommerce/assets/js/search.min.js?ver=1.20.0
IP 31.14.22.170:0
File type ASCII text, with very long lines (58925)
Hash 2784233b3cbe2dcac2d53dc3a16867ec
7fe5b20ce07d49da1e035d31a461a5aed3f2f420
905f11629a7a7990ba3080675f56cae221e731db2fb30c09f2e550908ab6ab8b
GET /wp-content/plugins/ajax-search-for-woocommerce/assets/js/search.min.js?ver=1.20.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:46 GMT
content-type: application/javascript
last-modified: Wed, 14 Sep 2022 16:42:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14969
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/swiper.js?ver=1.4.12
31.14.22.170200 OK 56 kB URL HTTP/2 deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/swiper.js?ver=1.4.12
IP 31.14.22.170:0
Hash 6d0bbaf618fc1ff5fcff828229c16211
0698518d73502278d74d316daa01b8e8618445d8
8f17c97c9ad3d5c4b2332ac3d64009789475a4221087b620e097699e46697f5b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woo-category-slider-grid/public/js/swiper.js?ver=1.4.12 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 18:59:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 56147
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
31.14.22.170200 OK 4.6 kB URL HTTP/2 deconfort.ro/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 31.14.22.170:0
File type ASCII text, with very long lines (15660)
Hash 0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:46 GMT
content-type: application/javascript
last-modified: Mon, 06 Jun 2022 09:28:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Fri, 02 Dec 2022 22:09:46 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/uploads/2020/11/deconfortalb.png
31.14.22.170200 OK 26 kB URL HTTP/2 deconfort.ro/wp-content/uploads/2020/11/deconfortalb.png
IP 31.14.22.170:0
File type PNG image data, 600 x 223, 8-bit/color RGBA, non-interlaced\012- data
Hash 888b41b3b9b09dca80d7547ae4b01b02
9566e99677d7a0bd92145fd3c9e3407813abe58f
b959936c6f0467995185cc7323d6e036c4a76ac5daa20aec23fd6e639b372735
GET /wp-content/uploads/2020/11/deconfortalb.png HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:46 GMT
content-type: image/png
last-modified: Sun, 01 Nov 2020 19:09:19 GMT
accept-ranges: bytes
content-length: 25767
date: Fri, 02 Dec 2022 22:09:46 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 22:09:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
31.14.22.170200 OK 76 kB URL HTTP/2 deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
IP 31.14.22.170:0
File type Web Open Font Format (Version 2), TrueType, length 75728, version 330.32636\012- data
Hash 44d537ab79f921fde5a28b2c1636f397
b2879f9e1d0985a96842bf7f55a2b2cc4c636d04
3d1080625d3030e88357b3ac9aa377dcec23f1b529c4ad03f7a9a435ccae04be
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/deconfort/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/css/all.min.css?ver=5.11.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:46 GMT
content-type: font/woff2
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-length: 75728
date: Fri, 02 Dec 2022 22:09:46 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/themes/deconfort/assets/fonts/simple-line-icons/Simple-Line-Icons.woff2?v=2.4.0
31.14.22.170200 OK 30 kB URL HTTP/2 deconfort.ro/wp-content/themes/deconfort/assets/fonts/simple-line-icons/Simple-Line-Icons.woff2?v=2.4.0
IP 31.14.22.170:0
File type Web Open Font Format (Version 2), TrueType, length 30064, version 1.0\012- data
Hash 0cb0b9c589c0624c9c78dd3d83e946f6
5da603104d4d6e362824ec9e7db32eb2d617949a
104673f4859604362a18fc6294197d8fffb8cb24ad3211e92eb04f655e18cf4a
GET /wp-content/themes/deconfort/assets/fonts/simple-line-icons/Simple-Line-Icons.woff2?v=2.4.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://deconfort.ro/wp-content/themes/deconfort/assets/css/third/simple-line-icons.min.css?ver=2.4.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:46 GMT
content-type: font/woff2
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-length: 30064
date: Fri, 02 Dec 2022 22:09:46 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/webfonts/fa-brands-400.woff2
31.14.22.170200 OK 75 kB URL HTTP/2 deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/webfonts/fa-brands-400.woff2
IP 31.14.22.170:0
File type Web Open Font Format (Version 2), TrueType, length 75336, version 330.32636\012- data
Hash cccc9d29470e879e40eb70249d9a2705
5fe986cda635681b4b6bbd6111df2f26d7fca286
d3caf12591d194712facd10bca14f0a924edb59c24447a3fd994a48286db8843
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/deconfort/assets/fonts/fontawesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/css/all.min.css?ver=5.11.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:46 GMT
content-type: font/woff2
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-length: 75336
date: Fri, 02 Dec 2022 22:09:46 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/favicon.ico
31.14.22.170404 Not Found 1.2 kB IP 31.14.22.170:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /favicon.ico HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 02 Dec 2022 22:09:46 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 02 Dec 2022 20:41:08 GMT
expires: Fri, 02 Dec 2022 22:41:08 GMT
cache-control: public, max-age=7200
age: 5318
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3762
Expires: Fri, 02 Dec 2022 23:12:29 GMT
Date: Fri, 02 Dec 2022 22:09:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3762
Expires: Fri, 02 Dec 2022 23:12:29 GMT
Date: Fri, 02 Dec 2022 22:09:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3762
Expires: Fri, 02 Dec 2022 23:12:29 GMT
Date: Fri, 02 Dec 2022 22:09:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3762
Expires: Fri, 02 Dec 2022 23:12:29 GMT
Date: Fri, 02 Dec 2022 22:09:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3762
Expires: Fri, 02 Dec 2022 23:12:29 GMT
Date: Fri, 02 Dec 2022 22:09:47 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F231cb69d-ef31-41ab-9446-6cfaebcbc544.webp
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F231cb69d-ef31-41ab-9446-6cfaebcbc544.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash be863c89aae9b81ce6aae9b6a560f54b
c879d5cd69263f4034aed5dec94e7a43bfc00840
c68ab0b0daf449e3ed059da94150a686aae2f76d2d0212c11634409b49b85bdc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F231cb69d-ef31-41ab-9446-6cfaebcbc544.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7491
x-amzn-requestid: 4cd45131-6fd8-45e6-8bc5-fdbfd886b224
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSsiBEB2IAMFblg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638427a6-725a0f1639a61f5d3c154456;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 03:14:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: STa610as0mDwEpHQHH4ZAfOHDSUyoYivudBfeSCVMlOyACjpKuFoxw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:50:19 GMT
age: 1168
etag: "c879d5cd69263f4034aed5dec94e7a43bfc00840"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jM-fTqLsmU3c_gc9Wle-lvCwXelA9Sid9axtzJQDsfOHv23yUbKsBw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 23:43:28 GMT
age: 80779
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45182367fd4f8b6dd234eef1022acdb1
d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:51:06 GMT
age: 1121
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 249aec334460c66dc88b9e8def4e48df
f86d1d278ba5b24587b10519b1b30d75044efd97
b083151804ced0533a5b33302ef110b50ddc4bf653de0fb8f6c7711f4bc29fe2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9449
x-amzn-requestid: c21c52f9-d971-46d9-b632-0439a0e23da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZkxHKbIAMFxkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6fb7-2b8cc0982af568626f4a4bbf;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:35:51 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XFIpOllaPcRJOsgZI2EVDyFv-Doz62OcY6gxFlejoXxdeVGya-PNFg==
via: 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:53:26 GMT
age: 981
etag: "f86d1d278ba5b24587b10519b1b30d75044efd97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49fea74a471d9b45d94402298988d827
11dbe272c75ad8dda9fe66062f761ad0a978c350
ddcf2de56e0fa45e50b45bb021a7b212ddf1ba5a108a849df04ad109809913bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4996
x-amzn-requestid: ac93701b-5591-447b-abcd-6dd7c8236d63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1EmIoAMFUyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-62984f247ab5233275eefc7f;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vGYoBLRpnjjxEKkZe8ZJKTn-fPpiKwyvQqUUujW3Ro0cO2R__q-OAg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:49:27 GMT
age: 1220
etag: "11dbe272c75ad8dda9fe66062f761ad0a978c350"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 436b46a2eea584bd8ec1dba5603c8659
fed437d1919af63f9d58396f318568aadae3d868
fff21dd129f35807bfc29c6582661a79e764238076e540968b57fcad18811566
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8016
x-amzn-requestid: bfb5f288-4467-467a-9b30-1055a4e6bc54
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZPeE4nIAMFvnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2f-53a5a66704157f4e003ecfa4;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:35 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lUqXgbpEaZh9DO_rv0K5pzHUAF1DsASkKYNTU6t5AUWZjHNV9LRojA==
via: 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:01:05 GMT
age: 522
etag: "fed437d1919af63f9d58396f318568aadae3d868"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
deconfort.ro/?wc-ajax=get_refreshed_fragments
31.14.22.170200 OK 284 B URL HTTP/2 deconfort.ro/?wc-ajax=get_refreshed_fragments
IP 31.14.22.170:0
File type JSON data\012- HTML document, ASCII text, with very long lines (538), with no line terminators
Hash 5bd77be4f28cdb52d221ed61116b5de5
732cba8e91f8fd560437b2e3c2e27fce297d9907
4d8fe70a11e6225e171a9776df334f37d53ec1181e72996020232069cc41f72c
Analyzer Verdict Alert fortinet Phishing
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://deconfort.ro
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-ua-compatible: IE=edge
access-control-allow-origin: https://deconfort.ro
access-control-allow-credentials: true
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-robots-tag: noindex
content-type: application/json; charset=UTF-8
content-length: 284
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 22:09:47 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
deconfort.ro/xr/adobe/
31.14.22.170404 Not Found 0 B IP 31.14.22.170:0
Analyzer Verdict Alert fortinet Phishing
GET /xr/adobe/ HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
x-ua-compatible: IE=edge
link: <https://deconfort.ro/wp-json/>; rel="https://api.w.org/"
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.15.0
31.14.22.170200 OK 0 B URL HTTP/2 deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.15.0
IP 31.14.22.170:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.15.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Mon, 14 Nov 2022 18:59:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6249
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2